Vulnerability Details CVE-2008-4295
Microsoft Windows Mobile 6.0 on HTC Wiza 200 and HTC MDA 8125 devices does not properly handle the first attempt to establish a Bluetooth connection to a peer with a long name, which allows remote attackers to cause a denial of service (device reboot) by configuring a Bluetooth device with a long hci name and (1) connecting directly to the Windows Mobile system or (2) waiting for the Windows Mobile system to scan for nearby devices.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.407
EPSS Ranking 97.2%
CVSS Severity
CVSS v2 Score 5.4
References
- http://secunia.com/advisories/32066
- http://www.securityfocus.com/bid/31420
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45463
- https://www.exploit-db.com/exploits/6582
- http://secunia.com/advisories/32066
- http://www.securityfocus.com/bid/31420
- https://exchange.xforce.ibmcloud.com/vulnerabilities/45463
- https://www.exploit-db.com/exploits/6582